Search



AuthenticationWorld.Com

About

This page contains a single entry from the blog posted on April 3, 2007 2:48 PM.

The previous post in this blog was New form of attack: XSS and CSRF.

The next post in this blog is How to hack Vista before it boots.

Many more can be found on the main index page or by looking through the archives.

Subscribe to this blog's feed
[What is this?]

« New form of attack: XSS and CSRF | Main | How to hack Vista before it boots »

Extreme caution advised using IE and Windows platform

Today Microsoft released an emergency patch for the windows animated cursor attack publicly reported last week (but since revealed it was reported to Microsoft in December 2006). If you haven't either gotten the automatic update or, downloaded it yourself, then do so NOW. Why?

This is a very high risk attack since the user only has to visit a web page with malware on it or open up an email message. The user doesn't necessarily have to click on a link to activate it. It applies to all Microsoft platforms.

Ryan Naraine has two excellent blogs covering the recent developments. The first blog covering the emergency patch can be found here.

His second blog covers all the recent attacks using the zero day fault. It includes 450 websites containing the malware, trojan attacks, etc.

Absolutely get this patch update and ensure your enterprise is updated. Otherwise you're running an extremely high risk of a successful security breach which can lead to enterprise identity theft, obtaining identity authentication information and possibly lead to capture of enterprise data.

Guy
www.authenticationworld.com
guy.huntington@authenticationworld.com

Posted by Guy Huntington on April 3, 2007 2:48 PM |

TrackBack

TrackBack URL for this entry:
http://www.authenticationworld.com/cgi-bin/blog/mt-tb.cgi/187

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)